[
https://issues.apache.org/jira/browse/HIVE-21363?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
]
Naveen Gangam updated HIVE-21363:
---------------------------------
Resolution: Fixed
Fix Version/s: 3.2.0
4.0.0
Status: Resolved (was: Patch Available)
Thanks for the review [~aihuaxu]. Fix has been committed to branch-3 and master.
> Ldap auth issue: group filter match should be case insensitive
> --------------------------------------------------------------
>
> Key: HIVE-21363
> URL: https://issues.apache.org/jira/browse/HIVE-21363
> Project: Hive
> Issue Type: Improvement
> Components: HiveServer2
> Affects Versions: 3.0.0
> Reporter: Naveen Gangam
> Assignee: Naveen Gangam
> Priority: Minor
> Fix For: 4.0.0, 3.2.0
>
> Attachments: HIVE-21363.patch
>
>
> Configure HiveServer2 with LDAP auth with (enable ldap, ldap URI, baseDN,
> userDNPattern, groupDNPattern and groupFilter).
> If the specified groupFilter case is different than the actual one in
> directory, then Hive cannot find a match and errors out.
> For example:
> groupFilter value=<groupTest>
> group name in directory server=grouptest.
> Similar search works by using other ldap clients like ldapsearch (ldap
> searches are case insensitive).
> While it is not a major issue as the workaround would be to configure the
> exact name, it is an easy fix that we should support out of box.
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
